The National Institute of Standards and Technology

Personal Identity Verification Program


Validation List for PIV Card Applications


The NIST maintains a validation list of all validated PIV Card Application (past and present). For SP 800-73-1, SP 800-73-2 and SP 800-73-3-based PIV Card Application Validations are listed.

SP 800-73-2-based PIV Card Application features are highlighted by the Optional SP 800-73-2 Features Supported heading and description in the Product Details column.
SP 800-73-3-based PIV Card Application features are highlighted by the Optional SP 800-73-3 Features Supported heading and description in the Product Details column

The list is maintained in ascending order of certificate numbers and is updated as new PIV Card Applications receive validation certificates from the NPIVP.

All questions regarding the implementation and/or use of any PIV Card Application located on the validation list should first be directed to the vendor.

< < < <
 

Cert #

Product Name

Vendor

Issue Date/Update Date

FIPS 140-2 validation certificate # and date

Product Details

1
PIV End Point Java Card Applet (Version: v1.08[1], v.1.09[2]) for Oberthur ID-One Cosmo 64 v5 Smart Card
Oberthur Technologies
4/11/2006 [1] 6/12/2007 [2]
668:
5/02/06 [1]
7/27/07 [2]
Optional SP 800-73-1 PIV Data Object/Features Implemented: *
1) Card Holder Facial Image
2) Card Holder Printed Information
3) X.509 Certificate for Digital Signature
4) X.509 Certificate for PIV Key Management
5) X.509 Certificate for Card Authentication
2
SafesITe FIPS 201 applet, Version 1.20 on Gemalto GemCombi'Xpresso R4 E72 PK Card
Gemalto Corp.
4/20/2006
691 07/20/06
Optional SP 800-73-1 PIV Data Object/Features Implemented:*
1)Card Holder Facial Image
2) Card HolderPrinted Information
3) X.509 Certificate for Digital Signature
4) X.509 Certificate for PIV Key Management
5) X.509 Certificate for Card Authentication
3
PIV Application on Hitachi MULTOS Smart Card, Hardware Version: AE45X1, Firmware Version 1.0

See REMOVED Product List for details.

Hitachi, Ltd.
5/26/2006

 

 
4
 
SETECS Inc.'s OneCARDTM PIV-II Java Card Applet (Version 1.2) on Gemalto GemCombi Xpresso R4 E72 PK card

See REMOVED Product List for details.

SETECS Inc.
6/6/2006

 

 

5
StepNexus PIV Application v4.2.1 on Keycorp MULTOS 64K Smart Card

See REMOVED Product List for details.

Keycorp Limited
7/31/2006

 

 

6
PIV card application version 19 on SafeNet Smart Card 400 (72K) SCCOS version 3.0

See REMOVED Product List for details.

SafeNet Inc.
9/05/2006

 

 

7
ActivIdentity PIV End-Point Applet(Versions: 2.6.2.6 [1], 2.6.2.A1[2] and 2.6.2.A2[3])
on
Oberthur ID-One Cosmo 64 v5 [880] and Oberthur ID-One Cosmo 64 v5 Extended PIV [962]

 

ActivIdentity Inc.
10/20/2006 [1] 09/20/2007 [2] 05/08/2008 [3]

 

 

880:
11/30/2007 [1]
12/18/2007 [2]
04/24/2008 [3]
962
06/12/2008[2] 06/23/2008[3]
Optional SP 800-73-1 PIV Data Object/Features Implemented: *
1) Card Holder Facial Image
2) Card Holder Printed Information
3) X.509 Certificate for Digital Signature
4) X.509 Certificate for PIV Key Management
5) X.509 Certificate for Card Authentication
Special Note:
Optional key 9B (PIV card application administration key) is not supported (Ref: SP 800-73). As a result, support for following APDUs cannot be verified: (a) PUT DATA (b) GENERATE ASYMMETRIC KEY PAIR.
8
PIV Applet version 01 on
J-IDMark 64 PIV
Sagem Orga Inc.
11/11/2006
774 5/17/07
 
Optional SP 800-73-1 PIV Data Object/Features Implemented: *
1) Card Holder Facial Image
2) Card Holder Printed Information
3) X.509 Certificate for Digital Signature
4) X.509 Certificate for PIV Key Management
5) X.509 Certificate for Card Authentication
9
CardLogix Credentsys-J PIV applet Version 2.3.0.8
on Atmel 72KB EEPROM (AT90SC12872RCFT) smart card
CardLogix, Corporation.
08/23/2007
917 2/13/2008
 
Optional SP 800-73-1 PIV Data Object/Features Implemented: *
1) Card Holder Facial Image
2) Card Holder Printed Information
3) X.509 Certificate for Digital Signature
4) X.509 Certificate for PIV Key Management
5) X.509 Certificate for Card Authentication
10
ActivIdentity PIV End-Point Applet (Versions: 2.6.2.6 [1], 2.6.2.7, [2] and
 

NOTE: Only Version 2.6.29 [3] --
2.6.2.9 [3] on Gemalto SafesITe TOP DM GX4 Card

See REMOVED Product List for details.

 

ActivIdentity Inc.
12/06/2007 [1]
05/08/2008 [2]
 
12/10/2011 [3]

963
06/24/2008 [1]
07/09/2008 [2]
pending [3]

 

Optional SP 800-73-1 PIV Data Object/Features Implemented on [1], [2] and [3]: *
1) Card Holder Facial Image
2) Card Holder Printed Information
3) X.509 Certificate for Digital Signature
4) X.509 Certificate for PIV Key Management
5) X.509 Certificate for Card Authentication
Optional SP 800-73-2 Features Supported - on [3] only :
6) Discovery Object
Special Note for [1], [2], [3]:
Optional key 9B (PIV card application administration key) is not supported (Ref: SP 800-73). As a result, support for following APDUs cannot be verified: (a) PUT DATA (b) GENERATE ASYMMETRIC KEY PAIR.

11
TecSec PIV Applet version 1.01 JCT (contact) on TecSec PIV Eagle Card - Contact [1] and TecSec PIV Applet version 1.0 JCL (contactless) on TecSec PIV Eagle Card -Contactless [2]

See REMOVED Product List for details.

TecSec, Inc. Atmel, CPI Card Group, and Athena Smartcard
12/21/2007 [1]
12/21/2007 [2]

 

 

12
Athena PIV Applet Version 1.0 on Athena IDProtect Duo PIV
Athena Smartcard Inc.
04/21/2008
991 08/15/2008
Optional SP 800-73-1 PIV Data Object/Features Implemented: *
1) Card Holder Facial Image
2) Card Holder Printed Information
3) X.509 Certificate for Digital Signature
4) X.509 Certificate for PIV Key Management
5) X.509 Certificate for Card Authentication
13
SafesITe FIPS 201 Applet version 1.20 on SafesITe PIV TPC DL FIPS GX4 ( P5CD144)
Gemalto Corp.
6/11/2008
1044 10/15/2008
Optional SP 800-73-1 PIV Data Object/Features Implemented: *
1) Card Holder Facial Image
2) Card Holder Printed Information
3) X.509 Certificate for Digital Signature
4) X.509 Certificate for PIV Key Management
5) X.509 Certificate for Card Authentication
14
ActivIdentity PIV End-Point Applet Version 2.6.2B.4 on Gemalto TOP DL GX4 Card
ActivIdentity Inc.
06/01/2008
1085 02/03/2009
Optional SP 800-73-1 PIV Data Object/Features Implemented: *
1) Card Holder Facial Image
2) Card Holder Printed Information
3) X.509 Certificate for Digital Signature
4) X.509 Certificate for PIV Key Management
5) X.509 Certificate for Card Authentication
Special Note:
Optional key 9B (PIV card application administration key) is not supported (Ref: SP 800-73). As a result, support for following APDUs cannot be verified: (a) PUT DATA (b) GENERATE ASYMMETRIC KEY PAIR.
15
ActivIdentity PIV End-Point Applet Version 2.6.2B.4 on Oberthur ID-One Cosmo 128 v5.5 D
ActivIdentity Inc.
06/01/2008
1145 06/24/2009
Optional SP 800-73-1 PIV Data Object/Features Implemented: *
1) Card Holder Facial Image
2) Card Holder Printed Information
3) X.509 Certificate for Digital Signature
4) X.509 Certificate for PIV Key Management
5) X.509 Certificate for Card Authentication
Special Note:
Optional key 9B (PIV card application administration key) is not supported (Ref: SP 800-73). As a result, support for following APDUs cannot be verified: (a) PUT DATA (b) GENERATE ASYMMETRIC KEY PAIR.
16
ActivIdentity PIV End-Point Applet Version 2.6.2.A2 on Giesecke and Devrient Sm@rtCafé Expert 3.2

See REMOVED Product List for details.

ActivIdentity Inc.
10/29/2008
 

 

17
ActivIdentity PIV End-Point Extended Applet Version 2.6.2B.4 on Giesecke and Devrient Sm@rtCafé Expert 3.2
ActivIdentity Inc.
04/09/2009
1239 12/07/2009
Optional SP 800-73-1 PIV Data Object/Features Implemented: *
1) Card Holder Facial Image
2) Card Holder Printed Information
3) X.509 Certificate for Digital Signature
4) X.509 Certificate for PIV Key Management
5) X.509 Certificate for Card Authentication
18
ID-One PIV Applet Suite Version 2.3.2-a on ID-One PIV (Type A)







6/23/2009: original validation for SP 800-73-2 conformance with a FIPS 140-2 validation # 1414 09/28/10

06/11/10: name change to ID-One PIV Applet Suite V 2.3.2 on ID-One PIV (Type A)

1/27/2011: updated validation for SP 800-73-3 conformance as ID-One PIV Applet Suite Version 2.3.2-a (Type A)
3/17/2011 moved "ID-One PIV Applet Suite version 2.3.2-a (Type A) "to be listed in certificate #25
Oberthur Technologies
1/27/11
1414 02/10/2011
Optional SP 800-73-1 PIV Data Object/Features Implemented: *
1) Card Holder Facial Image
2) Card Holder Printed Information
3) X.509 Certificate for Digital Signature
4) X.509 Certificate for PIV Key Management
5) X.509 Certificate for Card Authentication
Optional SP 800-73-2 Features Supported:
6) Discovery Object
7) Verification with Global PIN
Optional SP 800-73-3 Features Supported:
8) Key History Object with up to 20 on-card retired private Key Management keys and
9) up to 10 on-card retired X.509 Certificates for Key Managment that are also available off-card and
10) up to 10 additional off-card retired X.509 Certificates for Key Management
11) Cardholder Iris Image
19
ID-One PIV Applet Suite Version 2.3.2-a on ID-One PIV (Type B)







6/23/2009: original validation for SP 800-73-2 conformance with a FIPS 140-2 validation # 1416 10/06/10

06/11/10: name change to ID-One PIV Applet Suite V 2.3.2 on ID-One PIV (Type B)

1/27/2011: updated validation for SP 800-73-3 conformance as ID-One PIV Applet Suite Version 2.3.2-a (Type B)
3/17/2011 moved "ID-One PIV Applet Suite version 2.3.2-a (Type B)" to be listed in certificate #26

 

Oberthur Technologies
1/27/11
1416 02/10/2011
Optional SP 800-73-1 PIV Data Object/Features Implemented: *
1) Card Holder Facial Image
2) Card Holder Printed Information
3) X.509 Certificate for Digital Signature
4) X.509 Certificate for PIV Key Management
5) X.509 Certificate for Card Authentication
Optional SP 800-73-2 Features Supported:
6) Discovery Object
7) Verification with Global PIN
Optional SP 800-73-3 Features Supported:
8) Key History Object with up to 20 on-card retired private Key Management keys and
9) up to 10 on-card retired X.509 Certificates for Key Managment that are also available off-card and
10) up to 10 additional off-card retired X.509 Certificates for Key Management
11) Cardholder Iris Image
20
Athena PIV Applet Version 2.0 on Athena IDProtect Duo PIV
Athena Smartcard Inc.
8/13/2010
1487 01/28/2011
Optional SP 800-73-1 PIV Data Object/Features Implemented [1], [2]: *
1) Card Holder Facial Image
2) Card Holder Printed Information
3) X.509 Certificate for Digital Signature
4) X.509 Certificate for PIV Key Management
5) X.509 Certificate for Card Authentication
Optional SP 800-73-2 Features Supported:
5) Discovery Object
6) Verification with Global PIN
 
21
TecSec PIV Applet version 1.06 on TecSec Eagle PIV Card Contact [1] and on TecSec Eagle PIV Card Contactless [2]

See REMOVED Product List for details.

TecSec, Inc.
9/17/2010
 

 

22
Gemalto Protiva PIV Applet v1.55 on Protiva TOP DL Card
Gemalto Corp.
01/14/2011
1573 7/15/11
1044 6/09/11

Optional SP 800-73-1 PIV Data Object/Features Implemented: *
1) Card Holder Facial Image
2) Card Holder Printed Information
3) X.509 Certificate for Digital Signature
4) X.509 Certificate for PIV Key Management
5) X.509 Certificate for Card Authentication
Optional SP 800-73-2 Features Supported:
6) Discovery Object
7) Verification with the Global PIN

23
Gemalto Protiva PIV Applet v1.55 on Protiva TOP DM Card
Gemalto Corp.
01/14/2011
691
06/09/11
Optional SP 800-73-1 PIV Data Object/Features Implemented: *
1) Card Holder Facial Image
2) Card Holder Printed Information
3) X.509 Certificate for Digital Signature
4) X.509 Certificate for PIV Key Management
5) X.509 Certificate for Card Authentication
Optional SP 800-73-2 Features Supported:
6) Discovery Object
7) Verification with the Global PIN

24
Gemalto Protiva PIV Applet v1.55 on Protiva TOP WM Card
Gemalto Corp.
01/14/2011
691
06/09/11
Optional SP 800-73-1 PIV Data Object/Features Implemented: *
1) Card Holder Facial Image
2) Card Holder Printed Information
3) X.509 Certificate for Digital Signature
4) X.509 Certificate for PIV Key Management
5) X.509 Certificate for Card Authentication
Optional SP 800-73-2 Features Supported:
6) Discovery Object
7) Verification with the Global PIN
25
ID-One PIV Applet Suite Version 2.3.2-a on ID-One PIV (Type A)







 
Oberthur Technologies
1/27/11
1414 02/10/2011
Optional SP 800-73-1 PIV Data Object/Features Implemented: *
1) Card Holder Facial Image
2) Card Holder Printed Information
3) X.509 Certificate for Digital Signature
4) X.509 Certificate for PIV Key Management
5) X.509 Certificate for Card Authentication
Optional SP 800-73-2 Features Supported:
6) Discovery Object
7) Verification with Global PIN
Optional SP 800-73-3 Features Supported:
8) Key History Object with up to 20 on-card retired private Key Management keys and
9) up to 20 on-card retired X.509 Certificates for Key Managment that are also available off-card
10) Cardholder Iris Image
26
ID-One PIV Applet Suite Version 2.3.2-a on ID-One PIV (Type B)




 
Oberthur Technologies
1/27/11
1416 02/10/2011
Optional SP 800-73-1 PIV Data Object/Features Implemented: *
1) Card Holder Facial Image
2) Card Holder Printed Information
3) X.509 Certificate for Digital Signature
4) X.509 Certificate for PIV Key Management
5) X.509 Certificate for Card Authentication
Optional SP 800-73-2 Features Supported:
6) Discovery Object
7) Verification with Global PIN
Optional SP 800-73-3 Features Supported:
8) Key History Object with up to 20 on-card retired private Key Management keys and
9) up to 20 on-card retired X.509 Certificates for Key Managment that are also available off-card
10) Cardholder Iris Image
27
Gemalto Protiva PIV Applet v1.55 on Protiva TOP DL v2 Card

 

 

5/4/11: original validation for SP 800-73-2 conformance with a FIPS 140-2 validation pending
10/04/11: updated validation for SP 800-73-3 conformance.
Gemalto Corp.
10/4/11
1690 03/09/12
Optional SP 800-73-1 PIV Data Object/Features Implemented: *
1) Card Holder Facial Image
2) Card Holder Printed Information
3) X.509 Certificate for Digital Signature
4) X.509 Certificate for PIV Key Management
5) X.509 Certificate for Card Authentication
Optional SP 800-73-2 Features Supported:
6) Discovery Object
7) Verification with Global PIN

Optional SP 800-73-3 Features Supported:
8) Key History Object with up to 20 on-card retired private Key Management keys and
9) up to 10 on-card retired X.509 Certificates for Key Managment that are also available off-card and
10) up to 10 additional off-card retired X.509 Certificates for Key Managment
11) Cardholder Iris Image
28
Gemalto Protiva PIV Applet v1.55 on Protiva TOP WL v2 Card

See REMOVED Product List for details.

 

 

5/4/11: original validation for SP 800-73-2 conformance with FIPS 140-2 validation pending
10/04/11: updated validation for SP 800-73-3 conformance.

 

Gemalto Corp.
5/4/2011
 
 
29
HID Global Digital Identity PIV Extended Applet 2.7.1 on NXP JCOP 2.4.2
HID Global
02/10/12
1793 8/28/12
Optional SP 800-73-1 PIV Data Object/Features Implemented: *
1) Card Holder Facial Image
2) Card Holder Printed Information
3) X.509 Certificate for Digital Signature
4) X.509 Certificate for PIV Key Management
5) X.509 Certificate for Card Authentication
Optional SP 800-73-2 Features Supported:
6) Discovery Object
Optional SP 800-73-3 Features Supported:
7) Key History Object with up to 20 on-card retired private Key Management keys and
8) up to 20 on-card retired X.509 Certificates for Key Managment
9) Cardholder Iris Image
30
Gemalto Protiva PIV Applet v2.00  on Protiva TOP DL v2 Card and on Protiva TOP WL v2 Card
Gemalto Corp.
02/10/12
1843 11/29/12
Optional SP 800-73-1 PIV Data Object/Features Implemented: *
1) Card Holder Facial Image
2) Card Holder Printed Information
3) X.509 Certificate for Digital Signature
4) X.509 Certificate for PIV Key Management
5) X.509 Certificate for Card Authentication
Optional SP 800-73-2 Features Supported:
6) Discovery Object
7) Verification with Global PIN
Optional SP 800-73-3 Features Supported:
8) Key History Object with up to 20 on-card retired private Key Management keys and
9) up to 20 on-card retired X.509 Certificates for Key Managment that are also available off-card and
10) Cardholder Iris Image
31
Athena PIV Applet v3.0 on Athena IDProtect Duo Card with PIV
Athena Smartcard, Inc
04/16/12
1764 8/23/12
Optional SP 800-73-1 PIV Data Object/Features Implemented: *
1) Card Holder Facial Image
2) Card Holder Printed Information
3) X.509 Certificate for Digital Signature
4) X.509 Certificate for PIV Key Management
5) X.509 Certificate for Card Authentication
Optional SP 800-73-2 Features Supported:
6) Discovery Object
7) Verification with Global PIN
Optional SP 800-73-3 Features Supported:
8) Key History Object with up to 20 on-card retired private Key Management keys and
9) up to 20 on-card retired X.509 Certificates for Key Managment that are also available off-card and
10) Cardholder Iris Image
32
SafeNet PIV Applet Version 3.0 on SafeNet eToken 4300
SafeNet, Inc.
04/16/12
1800 12/06/12
Optional SP 800-73-1 PIV Data Object/Features Implemented: *
1) Card Holder Facial Image
2) Card Holder Printed Information
3) X.509 Certificate for Digital Signature
4) X.509 Certificate for PIV Key Management
5) X.509 Certificate for Card Authentication
Optional SP 800-73-2 Features Supported:
6) Discovery Object
7) Verification with Global PIN
Optional SP 800-73-3 Features Supported:
8) Key History Object with up to 20 on-card retired private Key Management keys and
9) up to 20 on-card retired X.509 Certificates for Key Managment that are also available off-card and
10) Cardholder Iris Image
33
Entrust IdentityGuard PIV Applet Version 1.0.1 patch 172799 on Entrust IdentityGuard PIV Credential
Entrust
04/16/12
1882 02/08/13
Optional SP 800-73-1 PIV Data Object/Features Implemented: *
1) Card Holder Facial Image
2) Card Holder Printed Information
3) X.509 Certificate for Digital Signature
4) X.509 Certificate for PIV Key Management
5) X.509 Certificate for Card Authentication
Optional SP 800-73-2 Features Supported:
6) Discovery Object
7) Verification with Global PIN
Optional SP 800-73-3 Features Supported:
8) Key History Object with up to 20 on-card retired private Key Management keys and
9) up to 20 on-card retired X.509 Certificates for Key Managment and
10) Cardholder Iris Image
34
ActivIdentity Digital Identity PIV End‐Point Applet Version 2.7 on Gemalto Protiva TOP DL v2
ActivIdentity Inc.
6/11/12

 

2055 12/5/2013
Optional SP 800-73-1 PIV Data Object/Features Implemented: *
1) Card Holder Facial Image
2) Card Holder Printed Information
3) X.509 Certificate for Digital Signature
4) X.509 Certificate for PIV Key Management
5) X.509 Certificate for Card Authentication
Optional SP 800-73-2 Features Supported:
6) Discovery Object
7) Verification with Global PIN
Optional SP 800-73-3 Features Supported:
8) Key History Object with up to 15 on-card retired private Key Management keys and
9) up to 15 on-card retired X.509 Certificates for Key Managment that are also available off-card and
10) Cardholder Iris Image
35

TecSec PIV Applet Version 1.007 on TecSec Armored Card v2.

 
TecSec, Inc.
10/11/12

 

1992 08/19/13
1986 08/09/13
Optional SP 800-73-1 PIV Data Object/Features Implemented: *
1) Card Holder Facial Image
2) Card Holder Printed Information
3) X.509 Certificate for Digital Signature
4) X.509 Certificate for PIV Key Management
5) X.509 Certificate for Card Authentication
Optional SP 800-73-2 Features Supported:
6) Discovery Object
7) Verification with Global PIN
Optional SP 800-73-3 Features Supported:
8) Key History Object with up to 20 on-card retired private Key Management keys and
9) up to 20 on-card retired X.509 Certificates for Key Managment that are also available off-card and
10) Cardholder Iris Image
36

ID-One PIV Applet Suite Version 2.3.4 on ID-One PIV (Type A)

 
Oberthur Technologies.
02/15/2013

 

1414 02/23/2013
Optional SP 800-73-1 PIV Data Object/Features Implemented: *
1) Card Holder Facial Image
2) Card Holder Printed Information
3) X.509 Certificate for Digital Signature
4) X.509 Certificate for PIV Key Management
5) X.509 Certificate for Card Authentication
Optional SP 800-73-2 Features Supported:
6) Discovery Object
7) Verification with Global PIN
Optional SP 800-73-3 Features Supported:
8) Key History Object with up to 20 on-card retired private Key Management keys and
9) up to 20 on-card retired X.509 Certificates for Key Managment that are also available off-card and
10) Cardholder Iris Image
 

 

 

*The listed PIV card applications may support cryptographic algorithms as described in SP800-78 and declared optional in SP800-73.  Agencies with requirements for optional algorithms should contact the vendor directly to obtain the usage modes for those algorithms.


Computer Security Division
National Institute of Standards and Technology
NIST is an agency of the U.S Commerce Department
NIST Privacy Statement
NIST Disclaimer
Page created on: January,19, 2006
Page updated on:
September 5, 2014